Methods for identifying audio or video content

ABSTRACT

The disclosed technology generally relates to methods for identifying audio and video entertainment content. One claim recites a method comprising: receiving data representing audio uploaded to a network server, the audio having been transformed prior to receipt; analyzing the data representing audio with a fingerprint generator to yield fingerprint data; determining whether the fingerprint data incurs a potential match in a fingerprint data repository, the potential match indicating an unreliability in the match below a predetermined threshold; upon a condition of unreliability in the match, and via an application program interface, issuing a call requesting at least a first reviewer and a second reviewer to review the data representing audio; receiving results from the first reviewer and results from the second reviewer through the application program interface; weighting results from the first reviewer differently than results from the second reviewer in determining whether to allow public access to the data representing audio. Of course other combinations and claims are provided.

RELATED APPLICATION DATA

This application is a continuation of U.S. patent application Ser. No. 13/909,834, filed Jun. 4, 2013 (now U.S. Pat. No. 8,868,917), which is a continuation of U.S. patent application Ser. No. 13/714,930, filed Dec. 14, 2012 (now U.S. Pat. No. 8,458,482) which is a continuation of U.S. patent application Ser. No. 12/114,612, filed May 2, 2008 (now U.S. Pat. No. 8,341,412), which is a division of U.S. patent application Ser. No. 11/613,891, filed Dec. 20, 2006 (published as US 2007-0162761 A1), which claims priority to provisional application 60/753,652, filed Dec. 23, 2005. Each of the above patent documents is hereby incorporated herein by reference in its entirety.

Some of the subject matter herein is related to that in various of the assignee's other patent applications, including Ser. No. 10/723,240, filed Nov. 26, 2003 (published as US20040213437); Ser. No. 10/979,770, filed Nov. 1, 2004 (now U.S. Pat. No. 7,314,162); and Ser. No. 11/132,724, filed May 18, 2005 (published as US20050288952).

TECHNICAL FIELD

The technology detailed herein spans a range of subject matter, including identifying audio/video entertainment content.

BACKGROUND

Certain implementations of the present technology make use of Amazon's Mechanical Turk service. Amazon's Turk web site explains:

-   -   Amazon Mechanical Turk provides a web services API for computers         to integrate Artificial Artificial Intelligence directly into         their processing by making requests of humans. Developers use         the Amazon Mechanical Turk web services API to submit tasks to         the Amazon Mechanical Turk web site, approve completed tasks,         and incorporate the answers into their software applications. To         the application, the transaction looks very much like any remote         procedure call—the application sends the request, and the         service returns the results. In reality, a network of humans         fuels this Artificial Intelligence by coming to the web site,         searching for and completing tasks, and receiving payment for         their work.

All software developers need to do is write normal code. The pseudo code below illustrates how simple this can be.

  read (photo); photoContainsHuman = callMechanicalTurk(photo); if (photoContainsHuman == TRUE){  acceptPhoto; } else {  rejectPhoto; }

More information about Amazon's Mechanical Turk service is provided in the attached Appendix A (Amazon Mechanical Turk Developer Guide, 2006, 165 pp., API Version 10-31-2006).

The Mechanical Turk service may be regarded as a structured implementation of a technology commonly termed “crowdsourcing”—employing a group of outsiders to perform a task. Wikipedia explains:

-   -   “Crowdsourcing” is a neologism for a business model that depends         on work being done outside the traditional company walls: while         outsourcing is typically performed by lower paid professionals,         crowdsourcing relies on a combination of volunteers and low-paid         amateurs who use their spare time to create content, solve         problems, or even do corporate R&D. The term was coined by Wired         magazine writer Jeff Howe and editor Mark Robinson in June 2006.         Crowds targeted for crowdsourcing include garage scientists,         amateur videographers, freelancers, photo enthusiasts, data         companies, writers, smart mobs and the electronic herd.

Overview

While not a new idea, crowdsourcing is becoming mainstream. Open source projects are a form of crowdsourcing that has existed for years. People who may not know one another work together online to create complex software such as the Linux kernel, and the Firefox browser. In recent years internet technology has evolved to allow non-technical people to participate in online projects. Just as important, crowdsourcing presumes that a large number of enthusiasts can outperform a small group of experienced professionals.

Advantages

The main advantages of crowdsourcing is that innovative ideas can be explored at relatively little cost. Furthermore, it also helps reduce costs. For example if customers reject a particular design, it can easily be scrapped. Though disappointing, this is far less expensive than developing high volumes of a product that no one wants. Crowdsourcing is also related to terms like Collective Customer Commitment (CCC) and Mass Customisation. Collective Customer Commitment (CCC) involves integrating customers into innovation processes. It helps companies exploit a pool of talent and ideas and it also helps firms avoid product flops. Mass Customisation is somewhat similar to collective customer commitment; however, it also helps companies avoid making risky decisions about what components to prefabricate and thus avoids spending for products which may not be marketable later.

Types of Crowdsourced Work

-   -   Steve Jackson Games maintains a network of MIB (Men In Black),         who perform secondary jobs (mostly product representation) in         exchange for free product. They run publicly or semi-publicly         announced play-tests of all their major books and game systems,         in exchange for credit and product. They maintain an active user         community online, and have done so since the days of BBSes.     -   Procter & Gamble employs more than 9000 scientists and         researchers in corporate R&D and still have many problems they         can't solve. They now post these on a website called         InnoCentive, offering large cash rewards to more than 90,000         ‘solvers’ who make up this network of backyard scientists. P&G         also works with NineSigma, YourEncore and Yet2.     -   Amazon Mechanical Turk co-ordinates the use of human         intelligence to perform tasks which computers are unable to do.     -   YRUHRN used Amazon Mechanical Turk and other means of         crowdsourcing to compile content for a book published just 30         days after the project was started.     -   iStockphoto is a website with over 22,000 amateur photographers         who upload and distribute stock photographs. Because it does not         have the same margins as a professional outfit like Getty Images         it is able to sell photos for a low price. It was recently         purchased by Getty Images.     -   Cambrian House applies a crowdsourcing model to identify and         develop profitable software ideas. Using a simple voting model,         they attempt to find sticky software ideas that can be developed         using a combination of internal and crowdsourced skills and         effort.     -   A Swarm of Angels is a project to utilize a swarm of subscribers         (Angels) to help fund, make, contribute, and distribute, a £1         million feature film using the Internet and all digital         technologies. It aims to recruit earlier development community         members with the right expertise into paid project members, film         crew, and production staff.     -   The Goldcorp Challenge is an example of how a traditional         company in the mining industry used a crowdsource to identify         likely veins of gold on its Red Lake Property. It was won by         Fractal Graphics and Taylor-Wall and Associates of Australia but         more importantly identified 110 drilling targets, 50% of which         were new to the company.     -   CafePress and Zazzle, customized products marketplaces for         consumers to create apparel, posters, cards, stamps, and other         products.     -   Marketocracy, to isolating top stock market investors around the         world in head to head competition so they can run real mutual         funds around these soon-to-be-discovered investment super-stars.     -   Threadless, an internet-based clothing retailer that sells         t-shirts which have been designed by and rated by its users.     -   Public Insight Journalism, A project at American Public Media to         cover the news by tapping the collective and specific         intelligence of the public. Gets the newsroom beyond the usual         sources, uncovers unexpected expertise, stories and new angles.

External Links and References

-   -   The Rise of Crowdsourcing, Wired June 2006.     -   Crowdsourcing: Consumers as Creators, BusinessWeek July 2006.

SUMMARY

The following text presents a simplified, incomplete summary in order to provide an orientation to certain aspects of the disclosed subject matter. This Summary is not an extensive overview. It is not intended to identify key/critical elements or to delineate the scope of the claimed subject matter. Its sole purpose is to present some concepts in a simplified form as a prelude to the more detailed description that follows.

In accordance with certain embodiments of the present technology, Amazon's Mechanical Turk system, or similar crowdsourcing arrangements, are employed to match a first item of visual or audio entertainment content to a counterpart in a universe of such items.

For example, consider a user social networking site such as YouTube (now Google) that distributes “user generated content” (e.g., video files), and employs fingerprinting to recognize media content that should not be distributed. The site may check a video file at the time of its uploading with a fingerprint recognition system (e.g., of the sort offered by Audible Magic, or Gracenote). If no clear match is identified, the video may be indexed and stored on YouTube's servers, available for public downloading. Meanwhile, the content can be queued for review by one or more crowdsource reviewers. They may recognize it as a clip from the old TV sitcom “I Love Lucy”—perhaps digitally rotated 3 degrees to avoid fingerprint detection. This tentative identification is returned to YouTube from the API call. YouTube can check the returning metadata against a title list of works that should not be distributed (e.g., per the request of copyright owners), and may discover that “I Love Lucy” clips should not be distributed. It can then remove the content from public distribution. Additionally, the fingerprint database can be updated with the fingerprint of the rotated version of the I Love Lucy clip, allowing it to be immediately recognized the next time it is encountered.

The foregoing and other examples, features and advantages of the present technology will be more apparent from the following Detailed Description.

BRIEF DESCRIPTION OF THE DRAWINGS

FIG. 1 is a diagram showing some components of an example computer system.

FIG. 2 is a flow diagram showing various acts accomplished through execution of code by a processor.

FIG. 3 is a diagram showing various additional acts accomplished through execution of code by a processor.

FIG. 4 is a flow diagram showing other various acts accomplished through execution of code by a processor.

DETAILED DESCRIPTION

One use of the Mechanical Turk service (and similar crowdsourcing technologies) is in connection with computationally difficult tasks, such as identification of audio, video and imagery content. These tasks are sometimes addressed by so-called “fingerprint” technology, which seeks to generate a “robust hash” of content (e.g., distilling a digital file of the content down to perceptually relevant features), and then compare the thus-obtained fingerprint against a database of reference fingerprints computed from known pieces of content, to identify a “best” match. Such technology is detailed, e.g., in Haitsma, et al, “A Highly Robust Audio Fingerprinting System,” Proc. Intl Conf on Music Information Retrieval, 2002; Cano et al, “A Review of Audio Fingerprinting,” Journal of VLSI Signal Processing, 41, 271, 272, 2005; Kalker et al, “Robust Identification of Audio Using Watermarking and Fingerprinting,” in Multimedia Security Handbook, CRC Press, 2005, and in patent documents WO02/065782, US20060075237, US20050259819, and US20050141707.

A related technology is facial recognition—matching an unknown face to a reference database of facial images. Again, each of the faces is distilled down to a characteristic set of features, and a match is sought between an unknown feature set, and feature sets corresponding to reference images. (The feature set may comprise eigenvectors or shape primitives.) Patent documents particularly concerned with such technology include US20020031253, U.S. Pat. No. 6,292,575, U.S. Pat. No. 6,301,370, U.S. Pat. No. 6,430,306, U.S. Pat. No. 6,466,695, and U.S. Pat. No. 6,563,950.

These are examples of technology that relies on “fuzzy” matching. The fingerprint derived from the unknown content often will not exactly match any of the reference fingerprints in the database. Thus, the database must be searched not just for the identical content fingerprint, but also for variants.

Expanding the search to include variants hugely complicates—and slows—the database search task. To make the search tractable, one approach is to prune the database—identifying excerpts thereof that are believed to be relatively likely to have a match, and limiting the search to those excerpts (or, similarly, identifying excerpts that are believed relatively unlikely to have a match, and not searching those excerpts).

The database search may locate several reference fingerprints that are similar to the fingerprint of the unknown content. The identification process then seeks to identify a “best” match, using various algorithms.

Such content identification systems can be improved by injecting a human into the process—by the Mechanical Turk service or similar systems.

In one particular arrangement, the content identification system makes an assessment of the results of its search, e.g., by a score. A score of 100 may correspond to a perfect match between the unknown fingerprint and a reference fingerprint. Lower scores may correspond to successively less correspondence. (At some lower score, S_(x), (perhaps 60) the system may decide that there is no suitable match, and a “no-match” result is returned, with no identification made.)

Above some threshold score, S_(y), (perhaps 70) the system may be sufficiently confident of the result that no human intervention is necessary. At scores below S_(y), the system may make a call through the Mechnical Turk service for assistance.

The Mechanical Turk can be presented the unknown content (or an excerpt thereof), and some reference content, and asked to make a comparison. (The reference content may be stored in the fingerprint database, or may be readily obtainable through use of a link stored in the reference database.)

A single item of reference content can be provided for comparison with the unknown content, or several items of reference content can be provided. (Again, excerpts may be used instead of the complete content objects. Depending on the application, the content might be processed before sending to the crowdsource engine, e.g., removing metadata (such as personally identifiable information: name, driver license number, etc.) that is printed on, or conveyed with, the file.)

The requested comparison can take different forms. The service can be asked simply whether two items appear to match. Or it can be asked to identify the best of several possible matches (or indicate that none appears to match). Or it can be asked to give a relative match score (e.g., 0-100) between the unknown content and one or more items reference content.

In many embodiments, a query is referred to several different humans (e.g., 2-50) through the Mechanical Turk service, and the returned results are examined for consensus on a particular answer. In some queries (e.g., does Content A match Content B? Or is Content A a better match to Content C?), a “vote” may be taken. A threshold of consensus (e.g., 51%, 75%, 90%, 100%) may be required in order for the service response to be given weight in the final analysis. Likewise, in queries that ask the humans to provide a subjective score, the scores returned from plural such calls may be combined to yield a net result. (The high and/or low and/or outlier scores may be disregarded in computing the net result; weighting can sometimes be employed, as noted below.)

As suggested, the data returned from the Mechanical Turk calls may serve as a biasing factor, e.g., pushing an algorithmically determined output one way or another, to yield a final answer (e.g., a net score). Or the data returned from the Mechanical Turk calls may be treated as a definitive answer—with results from preceding processes disregarded.

Sometimes the database search may reveal several candidate matches, all with comparable scores (which may be above the threshold S_(y)). Again, one or more calls to the Mechanical Turk service may be invoked to decide which match is the best, from a subjective human standpoint.

Sometimes the Mechanical Turk service can be invoked even in situations where the original confidence score is below the threshold, S_(x), which is normally taken as indicating “no match.” Thus, the service can be employed to effectively reduce this threshold—continuing to search for potential matches when the rote database search does not yield any results that appear reliable.

The service can also be invoked to effect database pruning. For example, a database may be organized with several partitions (physical or logical), each containing information of a different class. In a facial recognition database, the data may be segregated by subject gender (i.e., male facial portraits, female facial portraits), and/or by age (15-40, 30-65, 55 and higher—data may sometimes be indexed in two or more classifications), etc. In an image database, the data may be segregated by topical classification (e.g., portrait, sports, news, landscape). In an audio database, the data may be segregated by type (spoken word, music, other). Each classification, in turn, can be further segregated (e.g., “music” may be divided into classical, country, rock, other). And these can be further segregated (e.g., “rock” may be classified by genre, such as soft rock, hard rock, Southern rock; by artist, e.g., Beatles, Rolling Stones, etc).

A call to the Mechanical Turk can be made, passing the unknown content object (or an excerpt thereof) to a human reviewer, soliciting advice on classification. The human can indicate the apparent class to which the object belongs (e.g., is this a male or female face? Is this music classical, country, rock, or other?). Or, the human can indicate one or more classes to which the object does not belong.

With such human advice (which, again, may involve several human reviewers, with a voting or scoring arrangement), the system can focus the database search where a correct match—if any—is more likely to be found (or avoid searching in unproductive database excerpts). This focusing can be done at different times. In one scenario it is done after a rote search is completed, in which the search results yield matches below the desired confidence level of S_(y). If the database search space is thereafter restricted by application of human judgment, the search can be conducted again in the limited search space. A more thorough search can be undertaken in the indicated subset(s) of the database. Since a smaller excerpt is being searched, a looser criteria for a “match” might be employed, since the likelihood of false-positive matches is diminished. Thus, for example, the desired confidence level S_(y) might be reduced from 70 to 65. Or the threshold S_(x) at which “no match” is concluded, may be reduced from 60 to 55. Alternatively, the focusing can be done before any rote searching is attempted.

The result of such a human-focused search may reveal one or more candidate matches. The Mechnical Turk service may be called a second time, to vet the candidate matches—in the manner discussed above. This is one of several cases in which it may be desirable to cascade Mechanical Turk calls—the subsequent calls benefiting from the former.

In the example just-given, the first Mechanical Turk call aids in pruning the database for subsequent search. The second call aids in assessing the results of that subsequent search. In other arrangements, Mechanical Turk calls of the same sort can be cascaded.

For example, the Mechanical Turk first may be called to identify audio as music/speech/other. A second call may identify music (identified per the first call) as classical/country/rock/other. A third call may identify rock (identified per the second call) as Beatles/Rolling Stones/etc. Here, again, by iterative calling of a crowdsourcing service, a subjective judgment can be made that would be very difficult to achieve otherwise.

In some arrangements, human reviewers are pre-qualified as knowledgeable in a specific domain (e.g., relatively expert in recognizing Beatles music). This qualification can be established by an online examination, which reviewers are invited to take to enable them to take on specific tasks (often at an increased rate of pay). Some queries may be routed only to individuals that are pre-qualified in a particular knowledge domain. In the cascaded example just given, for example, the third call might be routed to one or more users with demonstrated expertise with the Beatles (and, optionally, to one or more users with demonstrated expertise with the Rolling Stones, etc). A positive identification of the unknown content as sounding like the Beatles would be given more relative weight if coming from a human qualified in this knowledge domain. (Such weighting may be taken into account when aggregating results from plural human reviewers. For example, consider an unknown audio clip sent to six reviewers, two with expertise in the Beatles, two with expertise in the Rolling Stones, and two with expertise in the Grateful Dead. Assume the Beatles experts identify it as Beatles music, the Rolling Stones experts identify it as Grateful Dead music, and the Grateful Dead experts identify it as Rolling Stones music. Despite the fact that there are tie votes, and despite the fact that no selection earned a majority of the votes, the content identification service that made these calls and is provided with these results may logically conclude that the music is Beatles.)

Calls to the Mechanical Turk service may request the human to provide metadata relevant to any content reviewed. This can include supposed artist(s), genre, title, subject, date, etc. This information (which may be ancillary to a main request, or may comprise the entirety of the request) can be entered into a database. For example, it can be entered into a fingerprint database—in association with the content reviewed by the human.

Desirably, data gleaned from Mechanical Turk calls are entered into the database, and employed to enrich its data—and enrich information that can be later mined from the database. For example, if unknown content X has a fingerprint F_(x), and through the Mechanical Turk service it is determined that this content is a match to reference content Y, with fingerprint F_(y), then a corresponding notation can be added to the database, so that a later query on fingerprint F_(x) (or close variants thereof) will indicate a match to content Y. (E.g., a lookup table initially indexed with a hash of the fingerprint F_(x) will point to the database record for content Y.)

Calls to outsourcing engines involve a time lag before results are returned. The calling system can generally cope, or be adapted to cope, with such lags.

Consider a user social networking site such as YouTube (now Google) that distributes “user generated content” (e.g., video files), and employs fingerprinting to recognize media content that should not be distributed. The site may check a video file at the time of its uploading with a fingerprint recognition system (e.g., of the sort offered by Audible Magic, or Gracenote). If no clear match is identified, the video may be indexed and stored on YouTube's servers, available for public downloading. Meanwhile, the content can be queued for review by one our more crowdsource reviewers. They may recognize it as a clip from the old TV sitcom “I Love Lucy”—perhaps digitally rotated 3 degrees to avoid fingerprint detection. This tentative identification is returned to YouTube from the API call. YouTube can check the returning metadata against a title list of works that should not be distributed (e.g., per the request of copyright owners), and may discover that “I Love Lucy” clips should not be distributed. It can then remove the content from public distribution. (This generally follows a double-check of the identification by a YouTube employee.) Additionally, the fingerprint database can be updated with the fingerprint of the rotated version of the I Love Lucy clip, allowing it to be immediately recognized the next time it is encountered.

If the content is already being delivered to a user at the moment the determination is made (i.e., the determination that the content should not be distributed publicly), then the delivery can be interrupted. An explanatory message can be provided to the user (e.g., a splash screen presented at the interruption point in the video).

FIG. 1 shows an example computer system (10) including a processor (12) and a computer-readable readable storage medium (14) storing executable code. The code when executed by the processor (12) can be configured to perform various acts. For example, FIG. 2 is a flow diagram showing some of these acts. FIG. 3 illustrates additional acts. FIG. 4 is a flow diagram showing other example acts.

Rotating a video by a few degrees is one of several hacks that can defeat fingerprint identification. (It is axiomatic that introduction of any new content protection technology draws hacker scrutiny. Familiar examples include attacks against Macrovision protection for VHS tapes, and against CSS protection for packaged DVD discs.) If fingerprinting is employed in content protection applications, such as in social networking sites (as outlined above) or peer-to-peer networks, its vulnerability to attack will eventually be determined and exploited.

Each fingerprinting algorithm has particular weaknesses that can be exploited by hackers to defeat same. An example will help illustrate.

A well known fingerprinting algorithm operates by repeatedly analyzing the frequency content of a short excerpt of an audio track (e.g., 0.4 seconds). The method determines the relative energy of this excerpt within 33 narrow frequency bands that logarithmically span the range 300 Hz-2000 Hz. A corresponding 32-bit identifier is then generated from the resulting data. In particular, a frequency band corresponds to a data bit “1” if its energy level is larger than that of the band above, and a “0” if its energy level is lower. (A more complex arrangement can also take variations over time into account, outputting a “1” only if the immediately preceding excerpt also met the same test, i.e., having a band energy greater than the band above.)

Such a 32 bit identifier is computed every hundredth of a second or so, for the immediately preceding 0.4 second excerpt of the audio track, resulting in a large number of “fingerprints.” This series of characteristic fingerprints can be stored in a database entry associated with the track, or only a subset may be stored (e.g., every fourth fingerprint).

When an unknown track is encountered, the same calculation process is repeated. The resulting set of data is then compared against data earlier stored in the database to try and identify a match. (As noted, various strategies can be employed to speed the search over a brute-force search technique, which yields unacceptable search times.)

While the just-described technique is designed for audio identification, a similar arrangement can be used for video. Instead of energies in audio subbands, the algorithm can use average luminances of blocks into which the image is divided as the key perceptual features. Again, a fingerprint can be defined by determining whether the luminance in each block is larger or smaller than the luminance of the preceding block.

The just-reviewed fingerprinting algorithm is particularly detailed in the Haitsma paper, referenced above. Four paragraphs from that paper, further detailing fingerprint extraction, are reproduced below:

Most fingerprint extraction algorithms are based on the following approach. First the audio signal is segmented into frames. For every frame a set of features is computed. Preferably the features are chosen such that they are invariant (at least to a certain degree) to signal degradations. Features that have been proposed are well known audio features such as Fourier coefficients, Mel Frequency Cepstral Coefficients (MFFC), spectral flatness, sharpness, Linear Predictive Coding (LPC) coefficients and others. Also derived quantities such as derivatives, means and variances of audio features are used. Generally the extracted features are mapped into a more compact representation by using classification algorithms, such as Hidden Markov Models, or quantization. The compact representation of a single frame is referred to as a sub-fingerprint. The global fingerprint procedure converts a stream of audio into a stream of sub-fingerprints. One sub-fingerprint usually does not contain sufficient data to identify an audio clip. The basic unit that contains sufficient data to identify an audio clip (and therefore determining the granularity) will be referred to as a fingerprint-block.

The proposed fingerprint extraction scheme is based on this general streaming approach. It extracts 32-bit sub-fingerprints for every interval of 11.6 milliseconds. A fingerprint block consists of 256 subsequent sub-fingerprints, corresponding to a granularity of only 3 seconds. The audio signal is first segmented into overlapping frames. The overlapping frames have a length of 0.37 seconds and are weighted by a Hanning window with an overlap factor of 31/32. This strategy results in the extraction of one sub-fingerprint for every 11.6 milliseconds. In the worst-case scenario the frame boundaries used during identification are 5.8 milliseconds off with respect to the boundaries used in the database of pre-computed fingerprints. The large overlap assures that even in this worst-case scenario the sub-fingerprints of the audio clip to be identified are still very similar to the sub-fingerprints of the same clip in the database. Due to the large overlap subsequent sub-fingerprints have a large similarity and are slowly varying in time.

The most important perceptual audio features live in the frequency domain. Therefore a spectral representation is computed by performing a Fourier transform on every frame. Due to the sensitivity of the phase of the Fourier transform to different frame boundaries and the fact that the Human Auditory System (HAS) is relatively insensitive to phase, only the absolute value of the spectrum, i.e. the power spectral density, is retained.

In order to extract a 32-bit sub-fingerprint value for every frame, 33 non-overlapping frequency bands are selected. These bands lie in the range from 300 Hz to 2000 Hz (the most relevant spectral range for the HAS) and have a logarithmic spacing. The logarithmic spacing is chosen, because it is known that the HAS operates on approximately logarithmic bands (the so-called Bark scale). Experimentally it was verified that the sign of energy differences (simultaneously along the time and frequency axes) is a property that is very robust to many kinds of processing.

Additional information on deriving fingerprints is provided in the Cano paper, A Review of Audio Fingerprinting, referenced above. Two paragraphs from that reference—discussing linear transforms useful in fingerprinting—follow:

The idea behind linear transforms is the projection of the set of measurements to a new set of features. If the transform is suitably chosen, the redundancy is significantly reduced. There are optimal transforms in the sense of information packing and decorrelation properties, like Karhunen-Loeve (KL) or Singular Value Decomposition (SVD). These transforms, however, are problem dependent and computationally complex. For that reason, lower complexity transforms using fixed basis vectors are common. Most CBID methods therefore use standard transforms from time to frequency domain to facilitate efficient compression, noise removal and subsequent processing. Lourens, (for computational simplicity), and Kurth et al., (to model highly distorted sequences, where the time-frequency analysis exhibits distortions), use power measures. The power can still be seen as a simplified time-frequency distribution, with only one frequency bin.

The most common transformation is the Discrete Fourier Transform (DFT). Some other transforms have been proposed: the Discrete Cosine Transform (DCT), the Haar Transform or the Walsh-Hadamard Transform. Richly et al. did a comparison of the DFT and the Walsh-Hadamard Transform that revealed that the DFT is generally less sensitive to shifting. The Modulated Complex Transform (MCLT) used by Mihcak et al. and also by Burges et al. exhibits approximate shift invariance properties.

While little has been written about attacks targeting fingerprinting systems, a casual examination of possible attack scenarios reveals several possibilities. A true hacker will probably see many more. Four simple approaches are discussed below.

Radio Loudness Profiling

The reader may be familiar with different loudness profiles selectable on car radios, e.g., Jazz, Talk, Rock, etc. Each applies a different frequency equalization profile to the audio, e.g., making bass notes louder if the Rock setting is selected, and quieter if the Talk setting is selected, etc. The difference is often quite audible when switching between different settings.

However, if the radio is simply turned on and tuned to different stations, the listener is generally unaware of which loudness profile is being employed. That is, without the ability to switch between different profiles, the frequency equalization imposed by a particular loudness profile is typically not noticed by a listener. The different loudness profiles, however, yield different fingerprints.

For example, in the Rock setting, the 300 Hz energy in a particular 0.4 second excerpt may be greater than the 318 Hz energy. However, in the Talk setting, the situation may be reversed. This change prompts a change in the leading bit of the fingerprint.

In practice, an attacker would probably apply loudness profiles more complex than those commonly available in car radios—increasing and decreasing the loudness at many different frequency bands (e.g., 32 different frequency bands). Significantly different fingerprints may thus be produced. Moreover, the loudness profile could change with time—further distancing the resulting fingerprint from the reference values stored in a database.

Multiband Compression

Another process readily available to attackers is audio multiband compression, a form of processing that is commonly employed by broadcasters to increase the apparent loudness of their signal (most especially commercials). Such tools operate by reducing the dynamic range of a soundtrack—increasing the loudness of quiet passages on a band-by-band basis, to thereby achieve a higher average signal level. Again, this processing of the audio changes its fingerprint, yet is generally not objectionable to the listeners.

Psychoacoustic Processing

The two examples given above are informal attacks—common signal processing techniques that yield, as side-effects, changes in audio fingerprints. Formal attacks—signal processing techniques that are optimized for purposes of changing fingerprints—are numerous.

Some formal attacks are based on psychoacoustic masking. This is the phenomena by which, e.g., a loud sound at one instant (e.g., a drum beat) obscures a listener's ability to perceive a quieter sound at a later instant. Or the phenomena by which a loud sound at one frequency (e.g., 338 Hz) obscures a listener's ability to perceive a quieter sound at a nearby frequency (e.g., 358 Hz) at the same instant. Research in this field goes back decades. (Modern watermarking software employs psychoacoustic masking in an advantageous way, to help hide extra data in audio and video content.)

Hacking software, of course, can likewise examine a song's characteristics and identify the psychoacoustic masking opportunities it presents. Such software can then automatically make slight alterations in the song's frequency components in a way that a listener won't be able to note, yet in a way that will produce a different series of characteristic fingerprints. The processed song will be audibly indistinguishable from the original, but will not “match” any series of fingerprints in the database.

Threshold Biasing

Another formal attack targets fingerprint bit determinations that are near a threshold, and slightly adjusts the signal to swing the outcome the other way. Consider an audio excerpt that has the following respective energy levels (on a scale of 0-99), in the frequency bands indicated:

300 Hz 318 Hz 338 Hz 358 Hz 69 71 70 68

The algorithm detailed above would generate a fingerprint of {011 . . . } from this data (i.e., 69 is less than 71, so the first bit is ‘0’; 71 is greater than 70, so the second bit is ‘1’; 70 is greater than 68, so the third bit is ‘1’).

Seeing that the energy levels are somewhat close, an attacker tool could slightly adjust the signal's spectral composition, so that the relative energy levels are as follows:

300 Hz 318 Hz 338 Hz 358 Hz [69] 70 [71] 69 70 68

Instead of {011 . . . }, the fingerprint is now {101 . . . }. Two of the three illustrated fingerprint bits have been changed. Yet the change to the audio excerpt is essentially inaudible.

Exploiting Database Pruning

Other fingerprint hacking vulnerabilities arise from shortcuts employed in the database searching strategy —seeking to prune large segments of the data from further searching. For example, the system outlined above confines the large potential search space by assuming that there exists a 32 bit excerpt of the unknown song fingerprint that exactly matches (or matches with only one bit error) a 32 bit excerpt of fingerprint data in the reference database. The system looks at successive 32 bit excerpts from the unknown song fingerprint, and identifies all database fingerprints that include an excerpt presenting a very close match (i.e., 0 or 1 errors). A list of candidate song fingerprints is thereby identified that can be further checked to determine if any meets the looser match criteria generally used. (To allow non-exact fingerprint matches, the system generally allows up to 2047 bit errors in every 8192 bit block of fingerprint data.)

The evident problem is: what if the correct “match” in the database has no 32 bit excerpt that corresponds—with just 1 or 0 bit errors—to a 32 bit excerpt from the unknown song? Such a correct match will never be found—it gets screened out at the outset.

A hacker familiar with the system's principles will see that everything hinges on the assumption that a 32 bit string of fingerprint data will identically match (or match with only one bit error) a corresponding string in the reference database. Since these 32 bits are based on the strengths of 32 narrow frequency bands between 300 Hz and 2000 Hz, the spectrum of the content can readily be tweaked to violate this assumption, forcing a false-negative error. (E.g., notching out two of these narrow bands will force four bits of every 32 to a known state: two will go to zero—since these bands are lower in amplitude than the preceding bands, and two will go to one—since the following bands are higher in amplitude that these preceding, notched, bands). On average, half of these forced bits will be “wrong” (compared to the untweaked music), leading to two bit errors—violating the assumption on which database pruning is based.)

Attacks like the foregoing require a bit of effort. However, once an attacker makes the effort, the resulting hack can be spread quickly and widely.

The exemplary fingerprinting technique noted above (which is understood to be the basis for Gracenote's commercial implementation, MusicID, built from technology licensed from Philips) is not unique in being vulnerable to various attacks. All fingerprinting techniques (including the recently announced MediaHedge, as well as CopySense and RepliCheck) are similarly believed to have vulnerabilities that can be exploited by hackers. (A quandary for potential adopters is that susceptibility of different techniques to different attacks has not been a focus of academic attention.)

It will be recognized that crowdsourcing can help mitigate the vulnerabilities and uncertainties that are inherent in fingerprinting systems. Despite a “no-match” returned from the fingerprint-based content identification system (based on its rote search of the database for a fingerprint that matches that of the altered content), the techniques detailed herein allow human judgment to take a “second look.” Such techniques can identify content that has been altered to avoid its correct identification by fingerprint techniques. (Again, once such identification is made, corresponding information is desirably entered into the database to facilitate identification of the altered content next time.)

It will be recognized that the “crowdsourcing” methodologies detailed above also have applicability to other tasks involved in the arrangements detailed in this specification, including all the documents incorporated by reference.

Implementation of systems according to the present technology is straightforward to artisans, e.g., using standard computer-, database-, software- and network-technology.

Although not particularly illustrated, it will be recognized that the methods described above can be implemented using general purpose (or special purpose) computers, e.g., comprising one or more CPUs, semiconductor memory, hard disks, networking connections, and input-output devices, as are conventional in the art. Software instructions for implementing the above-detailed methods can be stored on tangible media associated with such systems, e.g., disks and semiconductor memories.

To provide a comprehensive disclosure without unduly lengthening this specification, applicants incorporate-by-reference the documents referenced in this disclosure. In addition to those noted elsewhere, these incorporated documents include applications Ser. No. 10/979,770 (now U.S. Pat. No. 7,314,162) and Ser. No. 11/132,724 (published as US20050288952); published applications US20030052768, US20030099379. US20030115459, US20030216988, US20040059953, US20040064415, US20040153663, US20040189441, US20040205030, US20040213437, US20040230527, US20040245330, US20050039057, US20050132235, US20050154924, and US20050171851, and issued Pat. Nos. 5,679,938, 5,679,940, 6,513,018, 6,597,775, 6,944,604, 6,965,889, and 6,968,328.

It is expressly contemplated that the technologies, features and analytical methods detailed herein can be incorporated into the methods/systems detailed in such other documents. Moreover, the technologies, features, and analytical methods detailed in those documents can be incorporated into the methods/systems detailed herein. (It will be recognized that the brief synopses of prior documents provided above naturally do not reflect all of the features found in such disclosures.)

In view of the wide variety of embodiments to which the principles and features discussed above can be applied, it should be apparent that the detailed embodiments are illustrative only and should not be taken as limiting the scope of the disclosed technology. Rather, I claim all such modifications as may come within the scope and spirit of the following claims and equivalents thereof. 

I claim:
 1. A method comprising: receiving data representing audio uploaded to a network server, the audio having been transformed prior to receipt; analyzing the data representing audio with a fingerprint generator to yield fingerprint data; determining whether the fingerprint data incurs a potential match in a fingerprint data repository, the potential match indicating an unreliability in the match below a predetermined threshold; upon a condition of unreliability in the match, and via an application program interface, issuing a call requesting at least a first reviewer and a second reviewer to review the data representing audio; receiving results from the first reviewer and results from the second reviewer through the application program interface; weighting results from the first reviewer differently than results from the second reviewer in determining whether to allow public access to the data representing audio.
 2. The method of claim 1 in which the audio has been transformed with one or more loudness profiles in an attempt to avoid fingerprint detection.
 3. The method of claim 2 in which at least one loudness profile increases and decreases loudness of the audio at different frequency bands.
 4. The method of claim 1 in which the first reviewer and the second reviewer are pre-qualified in different areas of expertise.
 5. The method of claim 1 in which the condition of unreliability in the match occurs when a match score falls below a predetermined score.
 6. An apparatus comprising: means for receiving data representing audio uploaded to a network server, the audio having been transformed prior to receipt; means for storing the data representing audio; means for storing calculated fingerprints; means for storing executable instructions; and means for processing said instructions for: analyzing the data representing audio to yield fingerprint data; determining whether the fingerprint data incurs a potential match in said means for storing calculated fingerprints, the potential match indicating an unreliability in the match below a predetermined threshold; means for issuing a call, upon a condition of unreliability in the match, requesting at least a first reviewer and a second reviewer to review the data representing audio; means for receiving results from the first reviewer and results from the second reviewer through the application program interface; means for weighting results from the first reviewer differently than results from the second reviewer; means for determining whether to allow public access to the data representing audio based at least in part on weight results from said means for weighting.
 7. The apparatus of claim 6 in which the audio has been transformed with one or more loudness profiles in an attempt to avoid fingerprint detection.
 8. The apparatus of claim 7 in which at least one loudness profile increases and decreases loudness of the audio at different frequency bands.
 9. The apparatus of claim 6 in which the first reviewer and the second reviewer are pre-qualified in different areas of expertise.
 10. The method of claim 1 in which the condition of unreliability in the match occurs when a match score falls below a predetermined score. 